$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/407616f8-375b-4338-aa29-e44a42ca9e7d.roa File: 407616f8-375b-4338-aa29-e44a42ca9e7d.roa (raw, json) Hash identifier: FQlUSTOkubXpYcCYKWdhY4QN/9vEnBS3uOA85OrWE+g= Subject key identifier: 34:3E:80:0E:32:22:E0:93:E5:0F:B0:CC:82:C8:92:C9:BF:49:BB:05 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 1187F6450F691C7617CB2CB963E7B2BEC06E67DE Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/407616f8-375b-4338-aa29-e44a42ca9e7d.roa Signing time: Tue 04 Feb 2025 00:00:00 +0000 ROA not before: Tue 04 Feb 2025 00:00:00 +0000 ROA not after: Tue 11 Mar 2025 23:59:59 +0000 asID: 16509 IP address blocks: 54.94.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Fri 07 Feb 2025 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:87:f6:45:0f:69:1c:76:17:cb:2c:b9:63:e7:b2:be:c0:6e:67:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: Feb 4 00:00:00 2025 GMT Not After : Mar 11 23:59:59 2025 GMT Subject: CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:bf:00:7a:1f:48:82:64:cb:b1:76:3f:f3:3f: cf:54:cb:c0:55:0b:42:88:eb:a1:b6:d5:c6:50:88: a0:f1:26:3a:1c:4f:b4:25:97:c9:c2:6f:e6:3a:fa: 46:6f:81:52:16:fb:d3:f0:57:d3:58:a4:fc:7b:6e: eb:b5:2d:db:83:77:35:0b:47:0d:74:fc:0d:dc:da: ee:99:f9:a4:ca:b3:c3:89:49:ca:20:77:e0:f1:fc: b8:92:99:a0:59:c5:82:1a:5c:c9:88:41:a1:a4:ff: 4c:20:e7:32:ae:d1:cf:21:dc:d5:f3:77:2d:56:be: d6:77:6a:0c:1d:92:22:f4:ff:1f:2a:da:1d:f1:87: 40:08:70:07:ca:9b:31:00:92:0b:4e:72:9a:cc:11: d3:de:49:98:5a:79:01:a3:9f:6b:a6:46:63:21:99: 73:82:d9:7f:17:23:5e:66:ed:2f:97:8a:6f:c6:f1: a8:78:4d:17:a6:a3:14:6d:7f:aa:0e:f0:b5:b1:a7: dd:70:49:71:3a:e7:46:57:dc:1a:6d:fc:fb:d7:35: 13:c6:4e:d7:f9:f0:1c:87:98:e2:4e:4e:e9:78:56: 75:ee:b9:7b:6a:9a:02:6d:fa:fb:f5:63:ad:0f:a7: bf:7a:87:d0:f6:ec:69:b2:5b:39:92:c5:85:ad:6d: 08:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:3E:80:0E:32:22:E0:93:E5:0F:B0:CC:82:C8:92:C9:BF:49:BB:05 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/407616f8-375b-4338-aa29-e44a42ca9e7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.94.192.0/18 Signature Algorithm: sha256WithRSAEncryption 36:f8:f7:d3:41:d8:ca:cc:80:b9:f0:30:64:d9:af:0e:e8:5c: a5:df:8d:18:0c:02:16:46:89:8a:40:4d:db:6d:13:00:5c:ba: 48:ae:b7:25:ed:13:ac:6e:34:cd:35:1c:21:66:f4:17:8c:00: 4c:ce:08:c8:52:79:bc:cc:6a:3c:67:c6:50:ab:10:ff:13:2a: ce:59:ae:58:70:4b:d7:c5:1c:7d:a4:93:6f:a7:a3:72:3b:31: d5:db:e3:6f:cb:30:ce:17:ec:8b:92:96:54:9b:b1:ae:c3:3a: b8:e0:e0:a3:c5:d1:ae:53:99:28:6d:87:b3:12:a4:eb:7a:cb: 69:49:1a:96:05:d7:22:97:32:2c:93:c3:f3:ab:97:c7:c4:b1: a7:02:e9:55:7c:2e:4c:4e:f3:44:85:b1:fc:b5:40:42:18:0c: b5:be:ca:30:eb:d8:ff:fc:da:b8:c5:36:d0:a4:40:25:6a:1a: 7c:33:e9:9c:45:32:f0:2e:ab:ca:41:8c:94:89:1a:bb:d6:6e: 5a:75:90:69:bd:54:0a:aa:85:39:42:71:5a:ba:a6:9c:26:f6: a3:87:37:85:db:c1:0e:35:13:7e:ec:1a:73:33:64:72:fc:9f: d2:97:98:dd:4b:6c:c4:cb:5a:e6:65:5f:e0:9a:26:01:7b:9a: 9b:24:86:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEYf2RQ9pHHYXyyy5Y+eyvsBuZ94wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjUwMjA0MDAwMDAwWhcNMjUwMzExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTRmMDA1NzQ0ZTg4NjE3YjAzNTBiNzg3MmNjNmJlYmJj ZTMxZWU3OGJiMmE1YTExYWMwZGJkZWE3MjJmM2I0MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCevwB6H0iCZMuxdj/zP89Uy8BVC0KI66G21cZQiKDxJjoc T7Qll8nCb+Y6+kZvgVIW+9PwV9NYpPx7buu1LduDdzULRw10/A3c2u6Z+aTKs8OJ Scogd+Dx/LiSmaBZxYIaXMmIQaGk/0wg5zKu0c8h3NXzdy1WvtZ3agwdkiL0/x8q 2h3xh0AIcAfKmzEAkgtOcprMEdPeSZhaeQGjn2umRmMhmXOC2X8XI15m7S+Xim/G 8ah4TRemoxRtf6oO8LWxp91wSXE650ZX3Bpt/PvXNRPGTtf58ByHmOJOTul4VnXu uXtqmgJt+vv1Y60Pp796h9D27GmyWzmSxYWtbQjdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUND6ADjIi4JPlD7DMgsiSyb9JuwUwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQwNzYxNmY4LTM3NWItNDMzOC1hYTI5LWU0NGE0MmNhOWU3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAY2XsAwDQYJKoZIhvcNAQELBQADggEBADb499NB2MrMgLnwMGTZrw7oXKXf jRgMAhZGiYpATdttEwBcukiutyXtE6xuNM01HCFm9BeMAEzOCMhSebzMajxnxlCr EP8TKs5ZrlhwS9fFHH2kk2+no3I7MdXb42/LMM4X7IuSllSbsa7DOrjg4KPF0a5T mShth7MSpOt6y2lJGpYF1yKXMiyTw/Orl8fEsacC6VV8LkxO80SFsfy1QEIYDLW+ yjDr2P/82rjFNtCkQCVqGnwz6ZxFMvAuq8pBjJSJGrvWblp1kGm9VAqqhTlCcVq6 ppwm9qOHN4XbwQ41E37sGnMzZHL8n9KXmN1LbMTLWuZlX+CaJgF7mpskhlU= -----END CERTIFICATE-----Generated at Wed Feb 5 10:43:19 2025 by rpki-client